Vulnerabilities > Eshop Project > Eshop > 6.3.12
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-09-26 | CVE-2015-9413 | Cross-Site Request Forgery (CSRF) vulnerability in Eshop Project Eshop The eshop plugin through 6.3.13 for WordPress has CSRF with resultant XSS via the wp-admin/admin.php?page=eshop-downloads.php title parameter. | 6.5 |